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Description 

NETWORK LOCK METHOD AND RELATED 
APPARATUS WITH CIPHERED NETWORK 
LOCK AND INERASABLE DECIPHERING 

KEY 

Background of Invention 
[000 1 ] 1. Field of the Invention 

[0002] The present invention relates to a network lock method 
and a related apparatus, and more particularly, to a net- 
work lock method and a related apparatus by ciphered 
network lock and inerasable deciphering key. 

[0003] 2. Description of the Prior Art 

[0004] | n modern society, wireless communication networks have 
become one of the most important ways of communicat- 
ing with people and exchanging information. Everyone can 
take advantage of the service of a wireless communication 
network easily and enjoy the power of accessing world- 
wide information anywhere and anytime via a convenient 



cell phone. For permanently maintaining the market and 
managing communication networks, it has become im- 
portant to the information industry to improve the quality 
of communication services, maintain the communication 
order of communication networks, and ensure the rights 
of the subscribers of communication networks. 
[0005] | n general, service of wireless communication is provided 
by a service provider. Cell phone subscribers pay fees for 
rights of access to the communication service. To protect 
the rights of legal subscribers, when a cell phone user 
uses the communication service, the cell phone deter- 
mines whether the user is a legal subscriber by a network 
lock determination mechanism. If the user is not a legal 
subscriber, the cell phone is restricted to access the com- 
munication network directly. Please refer to Fig. 1. Fig. 1 
is a block diagram of a conventional communication net- 
work comprising communication devices 12 and 13, and a 
service provider 28. The cell phone 12 is taken for exam- 
ple to illustrate the communication device in a conven- 
tional communication system 10. There are a wireless sig- 
nal transceiver module 14, a processor 16 controlling 
functions of cell phone 12, a data memory 20 (a non- 
volatile memory such as a flash memory), a subscriber 



identification module card (SIM card) 24 capable of identi- 
fying the subscriber, a microphone 18A capable of trans- 
forming acoustic waves to electronic signals, a speaker 
18B, and a man machine interface (MMI) 21. The man ma- 
chine interface 2 1 may comprise a keypad, a display, a vi- 
brator, etc., so that the user of the cell phone 12 is able to 
control the cell phone 12 and monitor the operation of the 
cell phone 12 via the man machine interface 21. For the 
service provider 28, there is a base station 29 capable of 
providing communication service by transmitting and re- 
ceiving wireless signals among cell phones. For instance, 
the acoustic waves of the users voice at the cell phone 12 
are received and transformed into electronic signals by 
the microphone 18A, encoded appropriately by the pro- 
cessor 16, then modulated into radio frequency (RF) sig- 
nals in the transceiver module 14 and wirelessly emitted 
to the base station 29. The base station 29 wirelessly 
transmits the signals received from the cell phone 12 to 
the cell phone 13, so that the user of the cell phone 13 is 
able to receive the message from the user of the cell 
phone 12. For the acoustic message transmitted by the 
cell phone 13 to the cell phone 12, the base station 29 re- 
ceives it from the cell phone 13 and then wirelessly trans- 



mits it to the cell phone 12. The cell phone 12 receives 
the wireless signals at the transceiver module 14 and de- 
modulates them to a base band signal, then decodes them 
appropriately with the processor 16 and transmits them to 
the speaker 18B to transform them into acoustic waves so 
that the user of the cell phone 12 can hear them. In this 
manner, the user of the cell phone 12 and the user of the 
cell phone 13 are able to communicate via the communi- 
cation service provided by the service provider 28. 
[0006] However, as mentioned, to protect the rights of legal sub- 
scribers, verification of the network lock is carried out au- 
tomatically in the cell phone 12 to determine whether the 
user of the cell phone 12 is permitted to use the service of 
the communication network 10. Typically, there is a sub- 
scriber identification number 26 stored in the SIM card 24 
in the cell phone 12 to represent the identification of the 
user of the cell phone 12. Generally speaking, the SIM 
card 24 is detachably connected to the cell phone 12. 
When a user proposes to use the service of the communi- 
cation network 10 via the cell phone 12, he inserts the SIM 
card 24 to the cell phone 12 so that the cell phone 12 is 
able to identify the subscriber. Corresponding to the sub- 
scriber identification number 26 stored in the SIM card 24, 



there are a device identification number 23 and access in- 
formation 22 of the verification procedure stored in the 
data memory 20. The device identification number 23 is a 
unique identification number of the cell phone (such as an 
IMEI, International Mobile Equipment Identity). In other 
words, the device identification numbers of different cell 
phones are different. Access information 22 is adapted to 
record the status of the network lock of the cell phone 12. 
The network lock is adapted for defining what subscriber 
identification numbers are permitted to utilize the service 
of the communication network 10. The status of the net- 
work lock of the cell phone 12 and the permitted sub- 
scriber identification numbers are stored in access infor- 
mation 22. For example, when values of some fields of the 
subscriber identification number 26 are within a predeter- 
mined range, the cell phone 12 accepts the subscriber 
identification number 26 as a legal subscriber identifica- 
tion number. The predetermined range is recorded in the 
access information 22. In the prior art, when the verifica- 
tion is carried out in the cell phone 12, the processor 16 
loads and reads the access information 22 in the data 
memory 20, and determines whether the network lock of 
the cell phone 12 is turned on accordingly. If the status of 



the network lock is recorded as on in the access informa- 
tion 22, the processor 16 further checks whether the sub- 
scriber identification number 26 recorded in the SIM card 
24 is among the legal subscriber identification numbers 
recorded in the access information 22. If the subscriber 
identification number 26 is recognized as a legal sub- 
scriber identification number, for example, as previously 
mentioned, the values of some fields of the subscriber 
identification number 26 are within the recorded prede- 
termined range, the processor 16 determines the owner of 
the SIM card 24 is a legal subscriber of the communication 
network 10, and allows the cell phone 12 to proceed with 
following procedures so that the user of the cell phone 
12, that is, the owner of the SIM card 24, is able to utilize 
the service of the communication network 10 via the cell 
phone 12. On the contrary, if the processor 16 finds the 
subscriber identification number 26 in the SIM card 24 is 
beyond the range of legal subscriber identification num- 
bers recorded in the access information 22, the processor 
16 determines the owner of the SIM card 24 is not a legal 
subscriber of the communication network 10, and pre- 
vents access by the cell phone 12 to the communication 
network 10. On the other hand, if the processor 16 finds 



the status of the network lock stored in the access infor- 
mation 22 is off when proceeding with the verification, the 
processor 16 does not check the subscriber identification 
number 26, but allows the owner of the SIM card 24 to 
utilize the service of the communication network 10 via 
the cell phone 12 directly. 
[0007] jo sum UPj t he network lock of the prior art determines 
whether the owner of the SIM card 24 is permitted to uti- 
lize the service of the communication network 10 via the 
cell phone 12 according to the access information 22 
stored in the data memory 20. However, the conventional 
method carries the risk that the network lock be broken 
by illegal users. For example, when an illegal user wants 
to break the network lock of the cell phone 12, the illegal 
user can obtain the access information of another cell 
phone of which the network lock is turned off. Since the 
network lock is off in this cell phone, the status of the 
network lock is stored as off in the access information. 
Therefore, the access information can be utilized to break 
the network lock. For example, even when the network 
lock of the cell phone 12 is recorded as on in the access 
information 22, the illegal user can overwrite the original 
access information 22 with unsanctioned access informa- 



tion in the data memory 20, replacing the original access 
information 22 with the unsanctioned access information. 
When the cell phone 12 proceeds with the verification, it 
follows the unsanctioned access information and does not 
turn on the network lock, and hence the network lock of 
the cell phone 12 is broken. Even in the situation that the 
subscriber identification number 26 on the SIM card 24 is 
not a legal subscriber identification number, the owner of 
the SIM card 24 is able to access the service of the com- 
munication network 10 via the cell phone 12 illegally. For 
the convenience in maintenance and testing, there are 
predetermined maintenance junctions in the data memory 
20 of the cell phone 12. Illegal users can take advantage 
of these predetermined maintenance junctions to write 
the breaking access information into the data memory 20 
and overwrite the original access information 22 with a 
special data tool, such as JTAG tool, breaking the network 
lock of the cell phone 12. More seriously, illegal users can 
rewrite the access information 22 directly. For example, 
one can break the network lock of the cell phone 12 by 
rewriting the status of the network lock in the access in- 
formation 22 to off. In addition, illegal users can delete 
the access information 22. Generally, in the cell phone 12 



of the prior art, when the processor 16 finds that there is 
no access information in the data memory 20, the proces- 
sor 16 proceeds with the network lock verification accord- 
ing to a predetermined access information, and the net- 
work lock usually is not turned on in this predetermined 
access information. Therefore, the network lock of the cell 
phone 12 is broken by the illegal users. Once the network 
lock is illegally broken, operations of the communication 
network 10 and the rights of the service provider and the 
legal subscribers (the owners of legal SIM cards) are af- 
fected. 
Summary of Invention 

[0008] it is therefore a primary objective of the claimed invention 
to provide a network lock method and a related apparatus 
with ciphered network lock and inerasable deciphering 
key. 

[0009] | n the structure of the conventional network lock, the pro- 
cessor in the cell phone carries out the network lock veri- 
fication according to the status of the network lock 
recorded in the access information in the data memory. 
Once the access information is overwritten or falsified, the 
network lock is broken, and operations of the communi- 
cation network and the rights of legal subscribers are af- 



fected. 

[0010] | n the present invention, an asymmetric cryptography al- 
gorithm is utilized to encipher the access information of 
network locks of different cell phones into ciphertext ac- 
cess information according to different enciphering keys. 
The ciphertext access information of each cell phone is 
stored in each cell phone, and the corresponding deci- 
phering key is recorded in an inerasable memory in each 
cell phone. The corresponding enciphering key of each 
cell phone is reserved in the database of the service 
provider only, wherein the inerasable memory is a one- 
time programmable memory of a lockable area in a flash 
memory so that the recorded deciphering key cannot be 
rewritten. When a cell phone carries out network lock ver- 
ification, the cell phone deciphers the ciphertext access 
information in the data memory into plaintext access in- 
formation according to the deciphering key in the in- 
erasable memory, and proceeds with the network lock 
verification according to the status of the network lock 
recorded in the plaintext access information. If illegal 
users copy ciphertext access information of another cell 
phone B and write it into the cell phone A attempting to 
break the network lock of the cell phone A, the cell phone 



A cannot resolve the correct plaintext access information 
when deciphering the ciphertext access information be- 
cause the deciphering keys of the cell phone A and B are 
different. The cell phone A can therefore determine the 
network lock is broken and stop the access to the com- 
munication network to prevent the security of the com- 
munication network from being violated. The access in- 
formation in each cell phone is ciphertext hence illegal 
users are prevented from changing the access information 
directly to break the network lock. Since the enciphering 
key is not exposed in the cell phone or in the communica- 
tion network, even if illegal users are capable of falsifying 
the plaintext access information, the falsified plaintext 
access information cannot be enciphered into the correct 
ciphertext access information that can be deciphered by 
the corresponding deciphering key. Besides, when the 
service provider updates access information of the net- 
work lock in a cell phone, the service provider can deter- 
mine the corresponding enciphering key of the cell phone 
in the database and utilize it to encipher the updated 
plaintext access information into new ciphertext access 
information, and then store the updated ciphertext access 
information in the data memory of the cell phone. In this 



manner, the present invention ensures the safety of the 
network lock, and further protects the security of the 
communication network and the rights of subscribers. 
[0011] These and other objectives of the present invention will no 
doubt become obvious to those of ordinary skill in the art 
after reading the following detailed description of the pre- 
ferred embodiment that is illustrated in the various fig- 
ures and drawings. 
Brief Description of Drawings 

[0012] pig. 1 is a block diagram of a conventional communication 
network comprising communication devices and a service 
provider. 

[0013] pig. 2 is a block diagram of a present invention communi- 
cation network comprising communication devices and a 
service provider. 

[0014] Fig. 3 is another block diagram of a present invention 

communication network comprising communication de- 
vices and a service provider. 
Detailed Description 

[0015] please refer to Fig. 2. Fig. 2 is a block diagram of a 

present invention communication network 30. The com- 
munication network 30 may be a wireless communication 



network providing communication service through a ser- 
vice provider 48 to each user via each cell phone 
(represented by cell phone 32A and 32B in Fig. 2). The cell 
phone 32A is taken for example to introduce the commu- 
nication device of the present invention communication 
system 30. The cell phone 12 comprises a wireless signal 
transceiver module 34, a processor 36 capable of control- 
ling functions of cell phone 32A, a microphone 38A capa- 
ble of transforming acoustic waves to electronic signals, a 
speaker 38B capable of transforming electronic signals to 
acoustic waves, a non-volatile memory 40A, a non- 
volatile inerasable memory 50A, a SIM card 45 detachably 
connected to the cell phone 32A, and a man machine in- 
terface 41. The man machine interface 21 may comprise a 
keypad, a display, a vibrator, etc., so that the user of the 
cell phone 32A is able to control the cell phone 32A and 
monitor the operation of the cell phone 32A via the man 
machine interface 41. In the service provider 48, there is a 
base station 49 capable of providing communication ser- 
vice and transmitting and receiving wireless signals 
among cell phones. For instance, the acoustic waves of 
the voice of the user of the cell phone 32A can be re- 
ceived and transformed into electronic signals by the mi- 



crophone 38A, encoded appropriately by the processor 
36, modulated into radio frequency signals in the 
transceiver module 34, and wirelessly emitted to the base 
station 49. After the service provider 48 receives the wire- 
less electronic signals emitted by the cell phone 32A, the 
base station 49 transmits the signals wirelessly to the cell 
phone 32B. As for the message transmitted by the cell 
phone 32B to the cell phone 32A, the service provider 48 
receives it from the cell phone 32B and then transmits it 
to the cell phone 32A wirelessly. 
[0016] However, as mentioned, to protect the security of the 
communication network 30 and the rights of legal sub- 
scribers, a verification is carried out automatically in the 
cell phone 32A to determine whether the user of the cell 
phone 32A is permitted to utilize the service of the com- 
munication network 30 before the cell phone 32A uses 
the service of the communication network 30. The user 
has to insert the SIM card 45 to the cell phone 32A so that 
the cell phone 32 is able to identify the subscriber ac- 
cording to the subscriber identification number 46 
recorded in the SIM card 45 through the network lock 
mechanism. For implementing the verification in the 
present invention, in the communication network 30, the 



cell phone includes firmware and ciphertext access infor- 
mation besides the device identification number stored in 
the data memory, and further includes an inerasable 
memory for storing a deciphering key. As illustrated in 
Fig. 2, a device identification number IDA and ciphertext 
access information CTA are stored in the data memory 
40A of the cell phone 32A, and a deciphering key DKA is 
stored in the inerasable memory 50A. Following the same 
rule, a device identification number IDB of the cell phone 
32B and ciphertext access information CTB of the cell 
phone 32B are stored in the data memory 40B of the cell 
phone 32B, and a deciphering key DKB of the cell phone 
32B is stored in the inerasable memory 50B. (The basic 
structure of the cell phone 32B is similar to the cell phone 
32B. Therefore, some parts of the structure of the cell 
phone 32B, such as the transceiver module and the pro- 
cessor, are omitted in Fig. 2 for conciseness). As men- 
tioned, the corresponding device identification number of 
a cell phone, such as the IMEI identification number, is 
utilized to identify the cell phone, so the device identifica- 
tion numbers of different cell phones are different. For in- 
stance, the device identification number IDA of the cell 
phone 32A is different from the device identification 



number IDB of the cell phone 32B. Furthermore, in the 
communication network 30, the deciphering keys and the 
ciphertext access information stored in different cell 
phones are not the same. For example, in Fig. 2, the deci- 
phering keys DKA and DKB and the ciphertext access in- 
formation CTA and CTB of the cell phones 32A and 32B 
respectively are different from each other. The decipher- 
ing key is stored in the inerasable memory and is hence 
read-only. In implementation, the inerasable memory may 
be a one-time programmable memory. In some modern 
flash memories, it is possible to reserve a part of the 
memory as a lockable memory area. Similarly, the data 
cannot be overwritten once the data is written in the lock- 
able memory area. Oppositely, the data stored outside the 
lockable memory area in the same flash memory can be 
rewritten and erased. Utilizing this kind of flash memory, 
the data memory and the inerasable memory can be im- 
plemented in the same flash memory, wherein the lock- 
able memory area is adapted as the inerasable memory to 
record the deciphering key and the not-lockable memory 
area as the data memory to record the firmware of the cell 
phone, the device identification number, the ciphertext 
access information, etc. 



[0017] The service provider 48 includes a database 52 capable of 
recording the corresponding device identification num- 
bers, enciphering keys, and plaintext access information 
of the cell phones. The database 52 can also record the 
corresponding deciphering keys of the cell phones selec- 
tivity. For instance, in Fig. 2, the database 52 records the 
device identification number IDA of the cell phone 32A, 
and takes the device identification number IDA as an in- 
dex of the records of the corresponding enciphering key 
EKA, the deciphering key DKA, and plaintext access infor- 
mation PTA of the cell phone 32A. Similarly, for the cell 
phone 32B, the database 52 takes the device identification 
number IDB as an index of the records of the correspond- 
ing enciphering key EKB, the deciphering key DKB, and 
plaintext access information PTB. The plaintext access in- 
formation corresponding to each cell phone is utilized to 
record the access information of the network lock, such as 
whether the network lock is turned on, the subscriber 
identification numbers which are accepted by the network 
lock, and so on. 

[0018] The principle of the network lock in the present invention 
is described as follows. Access information of the network 
lock in each cell phone is enciphered to ciphertext access 



information in the data memory according to the enci- 
phering key corresponding to the cell phone by an asym- 
metric cryptography algorithm. When the cell phone car- 
ries out the verification before accessing the communica- 
tion service, the processor of the cell phone deciphers the 
ciphertext access information to plaintext access informa- 
tion according to the deciphering key stored in the in- 
erasable memory, then determines whether the user of 
the cell phone is a legal subscriber according to the infor- 
mation recorded in the plaintext access information, such 
as whether the network lock is on or off and the range of 
the legal subscriber identification number, to implement 
the network lock mechanism. As for the detailed imple- 
mentation of the present invention, please refer to Fig. 3 
and Fig. 2. Fig. 3 is another block diagram of the present 
invention communication network operating under the 
network lock mechanism. For the convenience of illustra- 
tion, some devices of the cell phone 32A and 32B are 
omitted in Fig. 3. 
[0019] As mentioned, in the present invention, a predetermined 
asymmetric cryptography algorithm is utilized to encipher 
plaintext access information and to decipher ciphertext 
access information. In the asymmetric cryptography algo- 



rithm, the enciphering key for enciphering plaintext to ci- 
phertext and the corresponding deciphering key for deci- 
phering the ciphertext to the original plaintext are not the 
same. In other words, when plaintext is enciphered to ci- 
phertext by an enciphering key, the ciphertext cannot be 
deciphered to the original plaintext by the same encipher- 
ing key, but has to be deciphered to the original plaintext 
by a specific corresponding deciphering key. Similarly, the 
result of the plaintext enciphered by the deciphering key 
is not equal to that of the plaintext enciphered by the en- 
ciphering key. According to the cryptography algorithm, a 
plurality of different enciphering keys and the corre- 
sponding deciphering keys are calculated in the present 
invention. In the present invention, an enciphering key 
and a corresponding deciphering key designated to a cell 
phone together with designated to a cell phone are 
recorded in the database 52 in the service provider 48, 
and we can take advantage of the device identification 
number of each cell phone as an index of the above 
recorded data. As illustrated in Fig. 3, the service provider 
48 generates the enciphering keys EKA and EKB, and the 
corresponding deciphering keys DKA and DKB according 
to the asymmetric cryptography algorithm 54. Since enci- 



phering keys EKA and EKB are different and the cryptogra- 
phy algorithm 54 is asymmetric, EKA, EKB, DKA, and DKB 
are all different. When the cell phone 32A leaves the fac- 
tory, it is given a specifically exclusive device identifica- 
tion number IDA. Then the service provider 48 distributes 
the enciphering key EKA and the deciphering key DKA to 
the cell phone 32A, and stores the EKA, DKA and the 
plaintext access information PTA corresponding to the 
status of the network lock of the cell phone 32A in the 
database 52 utilizing the device identification number IDA 
of the cell phone 32A as an index. Likewise, for the cell 
phone 32B which is given a specifically exclusive device 
identification number IDB, the service provider 48 dis- 
tributes the enciphering key EKB and the deciphering key 
DKB to the cell phone 32B, and stores the EKB, DKB and 
the plaintext access information PTB corresponding to the 
network lock of the cell phone 32B in the database 52 uti- 
lizing the device identification number IDB of the cell 
phone 32B as an index. 
[0020] when the cell phone leaves the factory, the service 

provider 48 not only distributes the unique enciphering 
key and the corresponding deciphering key to each cell 
phone but also writes the deciphering key into the in- 



erasable memory of each cell phone. The deciphering key 
recorded in the cell phone cannot be rewritten after the 
cell phone leaves the factory. As illustrated in Fig. 3, the 
deciphering key DKA of the cell phone 32A is recorded in 
the inerasable memory 50A, and the deciphering key DKB 
of the cell phone 32B is recorded in the inerasable mem- 
ory 50B. Besides, the status of the network lock of each 
cell phone is recorded in the corresponding plaintext ac- 
cess information in the database 52. However, in the 
present invention, the status of the network lock of each 
cell phone is not stored in the plaintext access informa- 
tion in each cell phone directly, but in ciphertext access 
information that is enciphered from the original plaintext 
access information by the service provider 48 according to 
the enciphering key of each cell phone. In Fig. 3, the 
plaintext access information PTA and PTB of the cell 
phones 32A and 32B respectively are utilized to record the 
corresponding statuses of the cell phone network locks. 
For instance, the status of the network lock of the cell 
phone 32A is recorded in the plaintext access information 
PTA. As mentioned, the service provider 48 first enciphers 
the plaintext access information PTA to the ciphertext ac- 
cess information CTA according to the enciphering key 



EKA by the cryptography algorithm 54, then records the 
ciphertext access information CTA in the data memory 
40A in the cell phone 32A. Likewise, the service provider 
48 first enciphers the plaintext access information PTB to 
the ciphertext access information CTB according to the 
enciphering key EKB by the cryptography algorithm 54, 
then records the ciphertext access information CTB in the 
data memory 40B in the cell phone 32B. To conclude the 
above description, the enciphering key EKA and the deci- 
phering key DKA and the plaintext access information PTA 
of the status of the network lock of the cell phone 32A are 
recorded when the cell phone 32A leaves the factory; 
meanwhile the deciphering key DKA is recorded in the in- 
erasable memory 50A in the cell phone 32A, and the ci- 
phertext access information CTA is recorded in the data 
memory 40A. Similarly, the enciphering key EKB and the 
deciphering key DKB and the plaintext access information 
PTB of the status of the network lock of the cell phone 
32B are recorded when the cell phone 32B leaves the fac- 
tory; meanwhile the deciphering key DKB is recorded in 
the inerasable memory 50B in the cell phone 32B, and the 
ciphertext access information CTB is recorded in the data 
memory 40A. Please note that under the construction of 



the present invention, the corresponding enciphering key 
and the network lock plaintext access information of each 
cell phone are recorded only in the database 52 of the 
service provider 48, and are not exposed in each cell 
phone. Only the corresponding ciphertext access informa- 
tion and the deciphering key are saved in each cell phone. 
[0021] | n the present invention, when the cell phone leaves the 
factory, the deciphering key and ciphertext access infor- 
mation corresponding to the cell phone are stored in the 
cell phone. As mentioned, when a user utilizes the service 
of the communication network 30 via a cell phone, the cell 
phone first carries out the verification of the network lock 
mechanism automatically to determine whether the user is 
a legal subscriber. At this moment, the processor of the 
cell phone deciphers the ciphertext access information 
stored in the data memory to plaintext access information 
according to the deciphering key stored in the inerasable 
memory by the cryptography algorithm 54, then deter- 
mines whether the user is a legal subscriber by the status 
of the network lock recorded in the plaintext access infor- 
mation. For example, as illustrated in Fig. 3, when the cell 
phone 32A proceeds with the verification, the processor 
36 of the cell phone 32A data memory 40A loads the ci- 



phertext access information CTA and the deciphering key 
DKA from the inerasable memory 50A, and applies the 
cryptography algorithm 54 to decipher the ciphertext ac- 
cess information CTA to plaintext access information 
PTA2 according to the deciphering key DKA. Since the ci- 
phertext access information CTA is enciphered from the 
plaintext access information PTA by the service provider 
49 according to the enciphering key EKA of the cell phone 
32A, and the deciphering key DKA stored in the inerasable 
memory 50A is corresponding to the enciphering key EKA, 
the plaintext access information PTA2 deciphered by the 
processor 36 of the cell phone 32A should equal the orig- 
inal plaintext access information PTA of the cell phone 
32A. According to the status of the network lock recorded 
in the plaintext access information PTA2, the cell phone 
32A is able to proceed with the verification. For instance, 
if the status of the network lock of the cell phone 32A 
recorded in the plaintext access information PTA2 is 
turned on, the processor 36 compares the subscriber 
identification number 46 in the SIM card 45 (please refer 
to Fig. 2) with the range of legal subscriber identification 
numbers recorded in the plaintext access information 
PTA2. If the subscriber identification number 46 conforms 



to the legal subscriber identification numbers, the proces- 
sor 36 permits the user to access the communication ser- 
vice of communication network 30 via the cell phone 32A. 
No matter what the conclusion of the verification is, the 
plaintext access information PTA2 deciphered by the pro- 
cessor 36 is saved in the volatile memory area in the pro- 
cessor 36. After the processor 36 completes the verifica- 
tion, the plaintext access information PTA2 is released, 
not exposing in the non-volatile memories in the cell 
phone 32A, such as the data memory 40A. 
[0022] The aforementioned network lock mechanism of the 
present invention is capable of protecting the network 
lock from being broken. In the prior art, illegal users 
overwrite the access information of the network lock 
stored in the cell phone with unsanctioned access infor- 
mation, or falsify the access information of the network 
lock stored in the cell phone directly, so that the cell 
phone of prior art is not able to determine the true status 
of the network lock when proceeding with the verification 
of the network lock. However, the aforementioned meth- 
ods cannot break the network lock mechanism of the 
present invention. For instance, an illegal user who pro- 
poses to break the network lock of the cell phone 32A 



may load the ciphertext access information CTB into the 
cell phone 32B and copy it to the cell phone 32A to over- 
write the original ciphertext access information CTA in the 
cell phone 32A. However, when the cell phone 32A pro- 
poses to determine the network lock and deciphers the ci- 
phertext access information CTB in the data memory 40A 
according to the deciphering key DKA, since the encipher- 
ing key EKA is not the same as the enciphering key EKB, 
the processor 36 cannot decipher to the correct plaintext 
access information PTB. The deciphered the network lock 
of the cell phone 32A has been broken. To take advantage 
of the ciphertext access information CTB of the cell phone 
32B to break the original network lock of the cell phone 
32A, illegal users have to also replace the deciphering key 
DKA of the cell phone 32A with the deciphering key DKB 
of the cell phone 32B, then the cell phone 32A can take 
advantage of the deciphering key DKB to decipher the ci- 
phertext access information CTB to plaintext access infor- 
mation with correct format. However, as mentioned, the 
deciphering key DKA of the cell phone 32A is stored in the 
inerasable memory 50A and cannot be replaced or falsi- 
fied. Therefore, illegal users cannot break the network 
lock in the present invention. Besides, if the illegal users 



propose to break the network lock of cell phone 32A and 
falsify the ciphertext access information CTA in the data 
memory 40A directly, the plaintext access information 
PTA2 deciphered by the processor 36 then becomes 
meaningless data with the wrong format. The processor 
36 can determine that the network lock of the cell phone 
32A has been broken accordingly. To break the network 
lock of the cell phone 32A, illegal users have to encipher 
the broken plaintext access information to the broken ci- 
phertext access information by the enciphering key EKA, 
then copy it to the data memory in the cell phone 32A. 
However, the enciphering key EKA of the cell phone 32A is 
kept in the service provider 48 of the communication net- 
work 30 only, and is not exposed in each cell phone, so 
illegal users cannot obtain the correct ciphertext access 
information meaning that they cannot break the network 
locks. 

[0023] when the processor 36 of the cell phone 32A determines 
that the format of the deciphered plaintext access infor- 
mation PTA2 is not correct and determines the network 
lock is broken, meaning that the ciphertext access infor- 
mation CTA is replaced by unknown data, the processor 
36 may stop the access of the cell phone 32A to the com- 



munication service and protect the security of the com- 
munication network 30. Besides, when the network lock is 
broken, the processor 32A may take advantage of the 
man machine interface (in Fig. 2) to further alert the user 
that the cell phone 32A needs to be verified with the ser- 
vice provider 48. The service provider 48 can determine 
the enciphering key EKA of the cell phone 32A in the 
database 52 according to the device identification number 
IDA, encipher the plaintext access information PTA to the 
ciphertext access information CTA with the cryptography 
algorithm 54 according to the enciphering key EKA, and 
rewrite the ciphertext access information CTA in the data 
memory 40A in the cell phone 32A to recover the network 
lock mechanism of the cell phone 32A. Of course, when 
the processor 36 determines that the network lock has 
been broken, the processor 36 can automatically alert the 
service provider 48 with its identification number IDA via 
the communication network 30, and ask the service 
provider 48 to resend the correct ciphertext access infor- 
mation CTA to the cell phone 32A via the communication 
network. The processor 40A then writes the correct ci- 
phertext access information CTA into the data memory 
40A automatically to recover the network lock mechanism 



of the cell phone 32A. Since the cell phone 32A only 
needs ciphertext access information CTA to recover the 
network lock mechanism, the enciphering key and the de- 
ciphering key of the cell phone 32A are not exposed in 
the wireless communication network even when the ci- 
phertext access information CTA is transmitted via the 
wireless communication network. Furthermore, since the 
deciphering keys of different cell phones are different 
from one another, even when illegal users are able to in- 
tercept the ciphertext access information CTA, the cipher- 
text access information CTA cannot be utilized to break 
the network locks of other cell phones (such as the cell 
phone 32B). Moreover, when illegal users propose to 
break the network lock of the cell phone 32A by deleting 
the ciphertext access information CTA, the cell phone 32A 
can ask the service provider 48 to redistribute the cipher- 
text access information CTA to recover the original net- 
work lock mechanism and protect the network lock from 
being broken. 

[0024] The present invention is capable of protecting the network 
lock mechanism even when there is a normal adjustment 
of the network lock. For example, if the service provider 
48 adjusts the status of the network lock of the cell phone 



32A voluntarily, such as by turning on the network lock of 
the cell phone 32A, the service provider 48 can update the 
plaintext access information PTA, and then encipher the 
updated plaintext access information PTA to new cipher- 
text access information CTA according to the enciphering 
key EKA of the cell phone 32A. Besides notifying the sub- 
scriber of the cell phone 32A to bring the cell phone 32A 
to the service provider 48 for writing the new ciphertext 
access information CTA into the cell phone 32A, the ser- 
vice provider 48 can transmit the new ciphertext access 
information CTA to the cell phone 32A via the wireless 
communication network 30 and let the processor 36 of 
the cell phone 32A write the new ciphertext access infor- 
mation CTA into the data memory 40A to replace the 
original ciphertext access information. This is not only 
convenient to the subscriber of the cell phone 32A, but 
also relatively safe for the access information, that is, the 
risk of exposure when transmitting is low, because the 
access information has already been enciphered to the ci- 
phertext access information. Besides the status of the 
network lock, the service provider records the device 
identification number corresponding to the cell phone in 
the plaintext access information, so that the enciphered 



ciphertext access information includes the device identifi- 
cation number of the cell phone, too. When the cell phone 
proceeds with the verification and deciphers the cipher- 
text access information to the plaintext access informa- 
tion, it determines whether the network lock is broken by 
the format of the plaintext access information, and it can 
double check it by comparing the deciphered device iden- 
tification number and the real device identification num- 
ber of the cell phone. 
[0025] | n the prior art, the access information of the network lock 
is stored in plaintext in the cell phone and is easy to be 
overwritten or falsified by illegal users, therefore the net- 
work lock is easily broken. By contrast, the present inven- 
tion distributes a unique set of enciphering key and deci- 
phering key to each cell phone in the communication net- 
work. The service provider keeps the corresponding enci- 
phering key of each cell phone to encipher the plaintext 
access information of the network lock of each cell phone 
into ciphertext access information. Each cell phone keeps 
only the ciphertext access information and stores the cor- 
responding deciphering key in a read only memory. When 
a cell phone proceeds with the verification of the network 
lock, the cell phone deciphers the ciphertext access infor- 



mation to plaintext access information according to the 
deciphering key of the cell phone, and implements the 
network lock mechanism according to the plaintext access 
information. Since the enciphering keys and deciphering 
keys of different cell phones are all different, even if ille- 
gal users are able to overwrite ciphertext access informa- 
tion of a cell phone with the ciphertext access information 
of other cell phone, or falsify the ciphertext access infor- 
mation of a cell phone directly, the cell phone can deter- 
mine that the network lock is broken and prevent illegal 
access to the communication service. Therefore, the net- 
work lock mechanism is preserved and the security of the 
communication network is protected. 
[0026] Those skilled in the art will readily observe that numerous 
modifications and alterations of the device may be made 
while retaining the teachings of the invention. Accord- 
ingly, the above disclosure should be construed as limited 
only by the metes and bounds of the appended claims. 



